jsasg/orico-official-website
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity

Compare commits

base: jsasg:d9e056972c0a446d9c70b7fe743956aeeee33888
Branches Tags
jsasg:master jsasg:dev jsasg:font jsasg:ozq-dev jsasg:cssupdate jsasg:qiniu jsasg:receive_sync jsasg:dev-bak
jsasg:v1.2.0 jsasg:三级分类 jsasg:v1.0.0
..
compare: jsasg:b36627ec256e0c1113ba1baddca27e6695943e27
Branches Tags
jsasg:master jsasg:dev jsasg:font jsasg:ozq-dev jsasg:cssupdate jsasg:qiniu jsasg:receive_sync jsasg:dev-bak
jsasg:v1.2.0 jsasg:三级分类 jsasg:v1.0.0

2 Commits
d9e056972c ... b36627ec25

Author SHA1 Message Date
jsasg
b36627ec25 perf: openapi client授权过期 2025-07-15 14:21:16 +08:00
jsasg
eb2a98e7fe fix: admapi 角色菜单权力model 2025-07-15 14:21:04 +08:00
3 changed files with 13 additions and 5 deletions
Expand all files Collapse all files

2
app/common/model/SysRoleAuthorityBaseModel.php
View File

@@ -18,6 +18,6 @@ class SysRoleAuthorityBaseModel extends Model
protected $schema = [
'role_id' => 'int',
'menu_id' => 'int',
'permission' => 'int',
'permission' => 'string',
];
}

2
app/openapi/model/OAuthClientModel.php
View File

@@ -20,6 +20,8 @@ class OAuthClientModel extends Model
'client_secret' => 'string',
'redirect_uri' => 'string',
'enabled' => 'int',
'expired_at' => 'datetime',
'remark' => 'string',
'created_at' => 'datetime',
'updated_at' => 'datetime',
'deleted_at' => 'datetime'

14
extend/oauth/OAuthStorage.php
View File

@@ -78,15 +78,18 @@ class OAuthStorage implements IOAuth2GrantCode, IOAuth2RefreshTokens, IOAuth2Gra
public function getClient($client_id): IOAuth2Client
{
// 实现获取客户端的逻辑
$ret = OAuthClientModel::clientId($client_id)->find();
if (is_null($ret)) {
$client = OAuthClientModel::clientId($client_id)->find();
if (is_null($client)) {
throw new \Exception('客户端不存在');
}
if ($ret->enabled != 1) {
if ($client->enabled != 1) {
throw new \Exception('客户端已禁用');
}
if (strtotime($client->expired_at) < time()) {
throw new \Exception('client_id 授权已过期');
}
return new OAuth2Client($ret->client_id, $ret->client_secret, [$ret->redirect_uri]);
return new OAuth2Client($client->client_id, $client->client_secret, [$client->redirect_uri]);
}
public function checkClientCredentials(IOAuth2Client $client, $client_secret = null): bool
@@ -96,6 +99,9 @@ class OAuthStorage implements IOAuth2GrantCode, IOAuth2RefreshTokens, IOAuth2Gra
if (is_null($client)) {
return false;
}
if (strtotime($client->expired_at) < time()) {
throw new \Exception('client_id 授权已过期');
}
return $client->client_secret == hash('sha1', $client->client_id . $client_secret . $this->salt);
}